Products
HP LaserJet printers
Source
hp-security-alert@hp.com
Tags
CVE-2024-9423 details
Published : Oct. 2, 2024, 4:15 p.m.
Last Modified : Oct. 2, 2024, 4:15 p.m.
Last Modified : Oct. 2, 2024, 4:15 p.m.
Description
Certain HP LaserJet printers may potentially experience a denial of service when a user sends a raw JPEG file to the printer. The printer displays a “JPEG Unsupported” message which may not clear, potentially blocking queued print jobs.
CVSS Score
1 | 2 | 3 | 4 | 5.3 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|---|---|
CWE-241 | Improper Handling of Unexpected Data Type | The product does not handle or incorrectly handles when a particular element is not the expected type, e.g. it expects a digit (0-9) but is provided with a letter (A-Z). |
CVSS Data
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
Base Score
5.3
Exploitability Score
3.9
Impact Score
1.4
Base Severity
MEDIUM
Vector String : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
References
URL | Source |
---|---|
https://support.hp.com/us-en/document/ish_11266441-11266463-16/hpsbpi03976 | hp-security-alert@hp.com |
This website uses the NVD API, but is not approved or certified by it.